Skip to content

mod_fast_auth_token

Module Description

This module implements XEP-0484: Fast Authentication Streamlining Tokens. It provides services necessary to:

  • issue auth tokens for authenticated users;
  • reconnect to the server using the tokens instead of the original auth method.

Tokens are stored in RDBMS.

It is not related to another similar module mod_auth_token.

Options

modules.mod_fast_auth_token.backend

  • Syntax: non-empty string
  • Default: "rdbms"
  • Example: backend = "rdbms"

Token storage backend. Currently only "rdbms" is supported.

modules.mod_fast_auth_token.validity_period

  • Syntax: TOML table. Each key is either access or rotate_before_expire.Each value is a nested TOML table with the following mandatory keys: value (non-negative integer) and unit ("days", "hours", "minutes" or "seconds").
  • Default: {access = {value = 3, unit = "days"}, rotate_before_expire = {value = 6, unit = "hours"}}
  • Example: validity_period.access = {value = 30, unit = "minutes"}

The user can use each token for access period of time before it expired.

The server would send a new token at the login time rotate_before_expire time before it expires. Set it to 0 to disable automatic rotation.

Example configuration

1
2
3
[modules.mod_fast_auth_token]
  validity_period.access = {value = 1, unit = "days"}
  validity_period.rotate_before_expire = {value = 0, unit = "days"}